CVE-2025-33014

IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.7 and 6.2.0.0 through 6.2.0.4 uses a web link with untrusted references to an external site. A remote attacker could exploit this vulnerability to expose sensitive information or perform unauthorized actions on the victims’ web browser.
Configurations

No configuration.

History

18 Jul 2025, 19:15

Type Values Removed Values Added
New CVE

Information

Published : 2025-07-18 19:15

Updated : 2025-07-18 19:15


NVD link : CVE-2025-33014

Mitre link : CVE-2025-33014

CVE.ORG link : CVE-2025-33014


JSON object : View

Products Affected

No product.

CWE
CWE-1022

Use of Web Link to Untrusted Target with window.opener Access